News

Late Monday night, the popular file-hosting site Dropbox announced that it suffered a phishing attack. While no content, passwords or payment information was accessed, the hacker did "successfully access some of the code store in GitHub".  The company revealed that on October 14, they became aware that an attacker stole employee credentials, using them to access source code containing "primarily, API keys - used by Dropbox developers". While it's currently unclear what those API keys...

Earlier today it was reported that former UK Prime Minister Liz Truss’s personal phone was hacked earlier this year by suspected foreign agents, putting national security at risk, according to a new report on Sunday. Further to this, unnamed “security sources” told the Mail on Sunday that the incident was discovered during the Conservative Party leadership contest over the summer, causing Truss sleepless nights as she worried it may impact her chances of winning. In addition,...

Earlier today, the the world’s second largest copper producer has been hit by a cyber-attack which forced IT systems offline. Further to this, Hamburg-headquartered Aurubis revealed in a brief statement that the attack struck on Friday evening. “This was apparently part of a larger attack on the metals and mining industry,” it said. “As a result, numerous systems at Aurubis sites had to be shut down and disconnected from the internet as a preventive measure.” At...

As reported by Medibank, an Australian health insurance giant, every one of its customers had their personal information accessed by ransomware actors—which happened a few days after Medibank had downplayed the aftermath of a recent breach.  In a newly issued statement, Medibank admitted that the threat actors might have compromised all of its customers’ personal data, including that of international students and policyholders with Medibank business ahm. In other words, it’s possible that an estimated...

Reports have said that the Hive ransomware-as-a-service (RaaS) group has claimed responsibility for the cyber-attack against Tata Power disclosed by the company on October 14 and believed to have occurred on October 3. “The company has taken steps to retrieve and restore the systems. All critical operational systems are functioning,” the Mumbai-based company said at the time. Security researcher Rakesh Krishnan, has claimed that the leak has reportedly affected several of Tata’s 12 million customers and includes personally identifiable...

Earlier today, global ticketing giant See Tickets has begun notifying customers of a significant breach of their personal and financial information, which lasted for over two-and-a-half years. It appears that the company, owned by French media firm Vivendi, revealed the news in breach notification letters published by various US states. An official statement from either business has so far not been forthcoming. Although, according to the published data breach notices, See Tickets was alerted to “potential...

Earlier today, a so-called “clicker” malware designed to facilitate ad fraud has been found on 16 mobile apps in the Google Play store, according to McAfee. Once notified by the security vendor, Google has removed the offending apps, which are estimated to have garnered as many as 20 million downloads. Having been detected as Android/Clicker, the malware was inserted into legitimate-looking utility apps such as flashlights, QR readers, cameras, unit converters and task managers. “Once...

It was reported earlier today, the U.S. cybersecurity and intelligence agencies published a joint advisory warning of attacks perpetrated by a cybercrime gang known as the Daixin Team primarily targeting the healthcare sector in the country. "The Daixin Team is a ransomware and data extortion group that has targeted the HPH Sector with ransomware and data extortion operations since at least June 2022," the agencies said. The alert was published Friday by the Federal Bureau of Investigation...

Today, Europol celebrated the capture of a “high-value target” this week after the arrest in Tenerife of a suspected prolific fraudster, said to have conned scores of investors. It appears that the 50-year-old Croatian man is believed to have run a large-scale investment fraud operation which managed to extract at least €5m ($4.9m) from victims. Thus far, 70 German investors have been identified, Europol claimed. In addition to his arrest, 37 property searches were carried...

Earlier today. a ransomware group which unusually targets Russian organizations has upped its efforts this year, demanding larger ransoms from its victims and developing new malware for Linux, according to Group-IB. Yesterday, the security vendor released what it claimed was the first comprehensive report on the group known as “OldGremlin,” which was first spotted in 2020. “That year, the gang carried out dozens of campaigns, with emails purporting to be from micro-finance companies, a metals and...